theHUElab Privacy Policy

heHughab (hereinafter referred to as "the Company") collects, uses and provides personal information based on the user's consent, and provides information and communication services such as the Telecommunications Privacy Act, the Telecommunications Business Act, the Promotion of Information Network Usage, We strictly comply with the personal information protection regulations of related laws and regulations that must be observed by providers, and we are striving to protect the rights and interests of users by setting personal information policy in accordance with related laws and regulations.

1. Collection of personal information

1) When collecting personal information of the user, the company must notify the user in advance and seek consent.

2) The Company collects your personal information through the following path.
① the tripper Service In the process of registering and using the service, the user agrees to collect personal information and enters information directly
② If you receive personal information from affiliate services or organizations
③ Web page, e-mail, fax, telephone, etc.
④ Participation in on-line and off-line events / events

2. Items of personal information to collect and collection methods

1) The Company first collects the information (essential information) required to perform the essential function of the service necessary for providing the tripper service, and collects information (optional information) to provide additional functions that are not restricted ).

2) We do not collect information (race, ideology, creed, political orientation, criminal record, medical information, etc.) that may infringe on the user's privacy without the consent of the user.

3) Essential information items that you collect by default are:

[General Membership]
The Company collects the user's phone number, device number, and e-mail address at the time of initial member registration for general membership, corporate membership and various service offerings, and collects user status information, name, cookie, , Real-time location information, location movement information, registered acquaintance information, and bad use record can be generated and collected.

[Common matters]
Name, mobile phone number (including communication company), terminal information, version of app (App)

3. Use of Personal Information

The Company uses the personal information collected for service provision, membership management and other contract execution, and will ask for user's consent beforehand if the purpose of use is changed.
1)Service provision
① Use for personal identification of users, provision of contents within the service, provision of specific customized services, authentication of the user when there is a purchase or charge, etc.

2)Membership Management
The use of membership service and restricted identification system, identification of individual, prevention of unauthorized use of bad member and prevention of unauthorized use, confirmation of signing, restriction of the number of subscription and subscription, preservation of records for dispute settlement, complaint handling, Forward notices

3)Develop new services and marketing · Use advertising
Providing new service development and customized service, Providing service according to statistical characteristics, Showing advertisement, Validation of service, Providing event and advertisement information, Providing participation opportunity, Access frequency, Members' service utilization statistics, Existing service account Provide membership options for transfer of information to similar new services, analyze usage information, and display personalized banners

4. Retention and use period of personal information

In principle, the personal information of the user is destroyed without delay when the purpose of collecting and using the personal information is achieved. However, the following information will be kept for the specified period for the following reasons.
1)Reason for holding information by internal policy
- Reason for retention: Records of fraudulent use to prevent fraudulent use
- Retention period: 1 year

2)Reason for holding information by relevant laws and regulations
If it is necessary to preserve in accordance with relevant laws and regulations such as commercial law, consumer protection law in e-commerce, etc., the company keeps the member information for a certain period determined by related laws and regulations. In this case, the company uses the information it keeps only for the purpose of keeping it, and the preservation period is as follows.
① Records related to the withdrawal of contracts or subscriptions, records of payment settlements and supplies, etc.
- Reason for preservation: Act on Consumer Protection in Electronic Commerce etc.
- Retention period: 5 years
② Records of consumer complaints or disputes
- Reason for preservation: Act on Consumer Protection in Electronic Commerce etc.
- Retention period: 3 years
③ Record of identity verification
- Reason for Preservation: Act on Information Network Promotion and Information Protection Act
- Retention period: 6 months
④ Record of service login
- Reason for Preservation: Communication Confidentiality Protection Act
- Retention period: 3 months
⑤ Record of indication / advertisement
- Reason for preservation: Act on Consumer Protection in Electronic Commerce etc.
- Retention period: 6 months
⑥ Books and supporting documents on all transactions prescribed by the tax law
- Reason for Preservation:
- Retention period: 5 years
⑦ Record of electronic financial transactions
- Reason for Preservation: Electronic Financial Transactions Act
- Retention period: 5 years

5. Commitment of Personal Information

1)In order to provide smooth basic service, better service, and customer convenience, we can entrust the business of handling personal information to an external professional company as follows.
Company Name:
Consignment service contents:
Retention period of personal information: Termination of membership or termination of consignment contract

2)The Company shall provide personal information only to third parties only if it has obtained the consent in accordance with the laws and regulations, and the Company shall comply with laws and regulations related to the protection of personal information, We reserve the right to prohibit the use of the personal information, the burden of liability at the time of the accident, the period of consignment, and the obligation to return or destroy personal information after the end of processing.

6. Sharing and providing personal information

The Company uses the personal information of the users within the limit of the notice and in principle does not disclose the user's personal information to the outside without prior consent of the user. However, the following cases are provided as an exception.
① When users agree to release in advance
② When necessary for the settlement of fees due to the provision of services
③ If there is a request from the investigating agency in accordance with procedures and methods prescribed in the Act for the purposes of investigation or pursuant to the provisions of the Act

7. Procedures and methods of personal information destruction

In principle, the personal information of the user is destroyed without delay when the purpose of collecting and using the personal information is achieved. The procedure and method of destroying personal information of the company are as follows.
1) Destruction procedure
① The information entered by the user for membership, etc., is transferred to a separate DB after the purpose is achieved (separate paper in case of paper). According to the internal policy and other information protection reasons (see the period of possession and use) It is stored for a certain period and then destroyed.
② The above personal information will not be used for any purposes other than the purpose for which it is held, except by law.

2) Destruction method
① Personal information printed on paper is crushed by crusher or destroyed by incineration.
② Personal information stored in the form of an electronic file is deleted using a technical method that can not reproduce the record.

8. Procedures and methods of personal information destruction

1)The company operates a 'cookie' that stores your information and finds it from time to time. A cookie is a small amount of information that a website sends to your computer browser (Internet Explorer, Chrome, etc.), and when you log-in to the website, the server will read the cookie on your browser , You will find additional information on your computer to provide services. These cookie information will be used to provide useful and customized services to your members. However, cookie information may identify your computer, but it does not identify you individually.

2)You can choose whether or not to use cookies. You can allow all cookies through your web browser's option settings, check each time a cookie is saved, or refuse to save all cookies. However, if you refuse to store cookies, you will not be able to use the web and may have difficulty using some services that require login.

9. Technological and administrative protection measures of personal information

In handling personal information of users, the Company takes the following technical and administrative measures to ensure the safety of personal information to prevent loss, theft, leakage, alteration or damage.
1)Measures against hacking
The company is doing its best to prevent leakage or damage of personal information of members by hacking or computer virus. In order to protect personal information from damage, we frequently back up the data and use the latest vaccine program to prevent personal information or data from being leaked or damaged. We are also able to securely transmit personal information over the network through encryption. And we have installed a system that can detect and block external intrusion and control unauthorized access from outside. We try to have all possible technical devices to secure security system.

2)Minimization and training of personal information handling staff
The company's personal information handling staff is limited to the person in charge, and a separate password is assigned to it so that it is updated on a regular basis. We emphasize compliance with the privacy policy through thorough education of the person in charge.

3)Operation of personal information protection organization
Through the in-house personal information protection organization, we check the implementation of the HOPAP Privacy Policy and the compliance of the person in charge, and we are working to correct and correct the problem if it is found.

10. Contact information of personal information manager and contact person

1)You can contact the person in charge of personal information management or the department in charge of all personal information related complaints arising from using the company's services. The company will respond promptly to the users' complaints.

Privacy Officer
- Name and Position: Designated person / Personal information manager
- Email: jguy12@hanmail.net
- Phone: 010-8203-0046

Personal information complaints department
- Department: Service Team
- Email: jguy12@hanmail.net
- Phone: 010-8203-0046

2)In addition, if personal information is infringed and you need to report or consult, you can contact the following organizations for help.

Privacy Complaints Center
(Without station number) 118
http://privacy.kisa.or.kr

Cyber Investigation Department, Supreme Prosecutors' Office
(Without station number) 1301
http://www.spo.go.kr

National Police Agency Cyber Safety Bureau
(Without area code) 182
http://cyberbureau.police.go.kr

Addendum

The notice date and effective date of the Privacy Policy are as follows.
Announcement date: Month of May 2019
Effective date: May 2019